Windows Server 2022 users with Administrative privileges must have separate accounts for administrative duties and normal operational tasks.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-254238	WN22-00-000010	SV-254238r991589_rule	CCI-000366	medium
Description
Using a privileged account to perform routine functions makes the computer vulnerable to malicious software inadvertently introduced during a session that has been granted full privileges.
STIG			Date
Microsoft Windows Server 2022 Security Technical Implementation Guide			2025-05-15

Details

Check Text (C-254238r991589_chk)

Verify each user with administrative privileges has been assigned a unique administrative account separate from their standard user account. If users with administrative privileges do not have separate accounts for administrative functions and standard user functions, this is a finding.

Fix Text (F-57674r848529_fix)

Ensure each user with administrative privileges has a separate account for user duties and one for privileged duties.